Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=centralparkfarmersmarket.com.au
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://centralparkfarmersmarket.com.au/ | 200 OK Content-Length: 18305 Content-Type: text/html | clean |
http://centralparkfarmersmarket.com.au/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/x-javascript | clean |
http://centralparkfarmersmarket.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://centralparkfarmersmarket.com.au/wp-content/plugins/jetpack/_inc/postmessage.js?ver=2.9.3 | 200 OK Content-Length: 19615 Content-Type: application/x-javascript | clean |
http://centralparkfarmersmarket.com.au/wp-content/plugins/jetpack/_inc/jquery.inview.js?ver=2.9.3 | 200 OK Content-Length: 5590 Content-Type: application/x-javascript | clean |
http://centralparkfarmersmarket.com.au/wp-content/plugins/jetpack/_inc/jquery.jetpack-resize.js?ver=2.9.3 | 200 OK Content-Length: 8083 Content-Type: application/x-javascript | clean |
https://maps.googleapis.com/maps/api/js?sensor=false&language=en&ver=3 | 200 OK Content-Length: 4299 Content-Type: text/javascript | clean |
http://centralparkfarmersmarket.com.au/wp-content/plugins/WeatherSlider/js/jquery-animate-background-position.js?ver=2.5.0 | 200 OK Content-Length: 2101 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { if(!document.defaultView || !document.defaultView.getComputedStyle){ var oldCSS = jQuery.css; jQuery.css = function(elem, name, force){ if(name === 'background-position'){ name = 'backgroundPosition'; } if(name !== 'backgroundPosition' || !elem.currentStyle || elem.currentStyle[ name ]){ return oldCSS.apply(this, arguments); } var style = elem.style; if ( !fo fx.start = [start[0],start[2]]; var end = toArray(fx.end); fx.end = [end[0],end[2]]; fx.unit = [end[1],end[3]]; fx.bgPosReady = true; } var nowPosX = []; nowPosX[0] = ((fx.end[0] - fx.start[0]) * fx.pos) + fx.start[0] + fx.unit[0]; nowPosX[1] = ((fx.end[1] - fx.start[1]) * fx.pos) + fx.start[1] + fx.unit[1]; fx.elem.style.backgroundPosition = nowPosX[0]+' '+nowPosX[1]; }; })(jQuery); Antivirus reports:
| ||
http://centralparkfarmersmarket.com.au/wp-content/plugins/WeatherSlider/js/jquery-easing-1.3.js?ver=1.3.0 | 200 OK Content-Length: 8101 Content-Type: application/x-javascript | clean |
http://centralparkfarmersmarket.com.au/wp-content/plugins/WeatherSlider/js/weatherslider.kreaturamedia.jquery.js?ver=2.5.0 | 200 OK Content-Length: 26332 Content-Type: application/x-javascript | clean |
http://centralparkfarmersmarket.com.au//platform.twitter.com/widgets.js?ver=3.9.3/ | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=3600 Connection: close Date: Sun, 18 Jan 2015 06:52:34 GMT Location: http://centralparkfarmersmarket.com.au/platform.twitter.com/widgets.js/?ver=3.9.3/ Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Sun, 18 Jan 2015 07:52:34 GMT X-Pingback: http://centralparkfarmersmarket.com.au/xmlrpc.php | clean |
http://centralparkfarmersmarket.com.au/platform.twitter.com/widgets.js/?ver=3.9.3/ | 200 OK Content-Length: 18305 Content-Type: text/html | clean |
http://s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=201503 | 200 OK Content-Length: 9301 Content-Type: application/x-javascript | clean |
http://s.gravatar.com/js/gprofiles.js?ver=2015Janaa | 200 OK Content-Length: 21442 Content-Type: application/x-javascript | clean |
http://centralparkfarmersmarket.com.au/wp-content/plugins/jetpack/modules/wpgroho.js?ver=3.9.3 | 200 OK Content-Length: 930 Content-Type: application/x-javascript | clean |
http://centralparkfarmersmarket.com.au/wp-content/themes/Divi/js/waypoints.min.js?ver=1.0 | 200 OK Content-Length: 8051 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: centralparkfarmersmarket.com.au
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 18 Jan 2015 06:52:26 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://wp.me/P3YGe8-bG>; rel=shortlink
Set-Cookie: PHPSESSID=hsid0s821kf1nkhghk8hbh3191; path=/
X-Pingback: http://centralparkfarmersmarket.com.au/xmlrpc.php
GET / HTTP/1.1
Host: centralparkfarmersmarket.com.au
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 18 Jan 2015 06:52:26 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://wp.me/P3YGe8-bG>; rel=shortlink
Set-Cookie: PHPSESSID=hsid0s821kf1nkhghk8hbh3191; path=/
X-Pingback: http://centralparkfarmersmarket.com.au/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: centralparkfarmersmarket.com.au
Referer: http://www.google.com/search?q=centralparkfarmersmarket.com.au
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: centralparkfarmersmarket.com.au
Referer: http://www.google.com/search?q=centralparkfarmersmarket.com.au
Result:
The result is similar to the first query. There are no suspicious redirects found.